[Dovecot] tls and auth plain login
Bradley Giesbrecht
bradley.giesbrecht at gmail.com
Wed Mar 4 02:55:01 EET 2009
On Mar 3, 2009, at 2:37 PM, Timo Sirainen wrote:
> On Tue, 2009-03-03 at 10:48 -0800, Bradley Giesbrecht wrote:
>> I want to allow plain text passwords only on ssl/tls.
>
> The default settings do that.
>
>> Is it possible to have:
>> auth default {
>> mechanisms = cram-md5 ntlm
>
> mechanisms = plain cram-md5 ntlm
>
> And then verify that you have disable_plaintext_auth=yes, which is
> also
> the default.
Thank you Timo.
I had removed disable_plaintext_auth from my conf because with it in
place it failed to show up in "dovecot -n".
I figured I had it in the wrong place.
Should disable_plaintext_auth show in "dovecot -n"?
> When testing make sure you don't test it from local server, because
> Dovecot treats local IPs as trusted.
I'll make sure I test from remotes going forward. Thanks.
A couple of us are working on a macports project for dovecot,
postfix, mysql, bind9 dlz etc... virtual everything.....
If we are successful in producing something of value I'll send you a
link to the port. Maybe you would want to add it to some part of your
wiki.
Also, the way we are building should easily move to bsd's and linux
distros. I know there are a bunch of these types of things out there
but I didn't find one that was what I was looking for.
//Brad
More information about the dovecot
mailing list